The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

Vulnerability in HP-UX mediainit program.

HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, (2) vuepad, (3) dtfile, or (4) dtpad, which do not authenticate users.

Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line option.

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.

Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on localhost.

Vulnerability in ftpd/kftpd in HP-UX 10.x and 9.x allows local and possibly remote users to gain root privileges.

Vulnerability in chsh command in HP-UX 9.X through 10.20 allows local users to gain privileges.

Vulnerability in Glance programs in GlancePlus for HP-UX 10.20 and earlier allows local users to access arbitrary files and gain privileges.

Buffer overflow in chfn command in HP-UX 9.X through 10.20 allows local users to gain privileges via a long command line argument.